Overview

overview

7

Static

static

3

fd064ca8a8...18.exe

windows7-x64

7

fd064ca8a8...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd064ca8a865bb6444fe4ac7fda7fdeb_JaffaCakes118

  • Size

    706KB

  • Sample

    240928-yj68dawfkc

  • MD5

    fd064ca8a865bb6444fe4ac7fda7fdeb

  • SHA1

    9e30b78a1ae1e3870159636ae07e68d4e82e681c

  • SHA256

    615a407b1e9510f72bc194b3b09321c17481ed744a959ab4fb54bb3538d87d97

  • SHA512

    2d2554f02bc5a7e87e3df7e099d38f277603d3cbcfa44d6f2374a0d002fb622e7b385211b8c6837007b56f2033b7c32f8dc0eca72b1f00b00f35c142f7a9c78b

  • SSDEEP

    12288:OJ9Io7q7s5G41H6sFJJ09aJtaSBC3WmQuDP2VqCas/ch7oL7aQEwhGNt:6J6s5B1H6sFJJ0g0SI3WmQs2so87o6Sy

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      fd064ca8a865bb6444fe4ac7fda7fdeb_JaffaCakes118

    • Size

      706KB

    • MD5

      fd064ca8a865bb6444fe4ac7fda7fdeb

    • SHA1

      9e30b78a1ae1e3870159636ae07e68d4e82e681c

    • SHA256

      615a407b1e9510f72bc194b3b09321c17481ed744a959ab4fb54bb3538d87d97

    • SHA512

      2d2554f02bc5a7e87e3df7e099d38f277603d3cbcfa44d6f2374a0d002fb622e7b385211b8c6837007b56f2033b7c32f8dc0eca72b1f00b00f35c142f7a9c78b

    • SSDEEP

      12288:OJ9Io7q7s5G41H6sFJJ09aJtaSBC3WmQuDP2VqCas/ch7oL7aQEwhGNt:6J6s5B1H6sFJJ0g0SI3WmQs2so87o6Sy

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks